Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
File: idvHFWpO58Z9nmhHZ6L0uvijW6s.mft (raw, json)
Hash identifier: EKykpUnRtTgzz/T7lcntx24fEFGvuUN7gFMsM1yU7Bw=
Subject key identifier: AB:54:0B:45:85:76:F8:83:47:57:79:C2:59:DD:F9:CC:8A:48:0F:B7
Authority key identifier: 89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
Certificate issuer: /CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Certificate serial: 019A5006FAFCD4B2E316B6B046528F632C96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
Manifest number: 1711
Signing time: Tue 04 Nov 2025 18:00:26 +0000
Manifest this update: Tue 04 Nov 2025 18:00:26 +0000
Manifest next update: Wed 05 Nov 2025 18:00:26 +0000
Files and hashes: 1: gFSAApK2GHEW9co-hPvID0_Xbj0.roa (hash: 4lamTHM9SOHzvbwgysIOqInF+Jmi38B32pNkhrQEyFY=)
2: idvHFWpO58Z9nmhHZ6L0uvijW6s.crl (hash: AgFuU0hH6RP1Ia12lX6P1/qYu11vUlxMGRQkX0yfpM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:06:fa:fc:d4:b2:e3:16:b6:b0:46:52:8f:63:2c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89dbc7156a4ee7c67d9e684767a2f4baf8a35bab
Validity
Not Before: Nov 4 18:00:26 2025 GMT
Not After : Nov 5 18:00:26 2025 GMT
Subject: CN=ab540b458576f883475779c259ddf9cc8a480fb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6d:d6:49:be:34:90:47:be:ef:7c:19:89:b6:
1d:eb:22:bd:34:2c:36:db:be:5b:8e:89:93:b1:be:
2e:47:fa:ce:aa:d1:1d:7e:87:79:13:3e:ce:40:b5:
97:13:ad:9f:19:c2:af:f1:a0:c5:8f:2a:36:f7:62:
6a:d8:4e:04:e1:af:4b:08:da:f4:fe:c8:65:55:cf:
81:f7:c7:48:2a:16:82:db:be:6e:3e:b5:04:41:3c:
01:e6:bc:75:ec:3c:e8:d3:98:0b:e1:2c:e1:c8:70:
06:5a:f9:88:2a:9b:fd:89:23:2a:0e:f2:34:11:3e:
0a:2a:8d:44:79:1d:90:e2:9a:5d:a9:24:a3:2e:bc:
a1:63:69:35:cb:24:9e:ce:c6:6e:97:60:2b:16:3d:
2a:5d:01:25:c5:d3:a4:29:17:2d:f8:ca:6e:05:a6:
93:32:7b:cd:59:24:aa:a8:ea:61:cc:b4:04:d1:81:
96:8e:1a:8b:69:4e:ee:c3:45:10:b9:8f:82:32:67:
72:ef:40:fb:a1:f1:75:20:d1:f6:d7:57:5d:36:77:
73:ea:c9:67:fc:fd:ef:89:d3:0e:f8:e8:7d:85:43:
21:73:6c:a6:17:2b:c2:5b:bf:db:33:e2:24:78:54:
b6:c1:ea:46:d8:6a:d9:3c:26:0f:27:8e:03:8f:bd:
87:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:54:0B:45:85:76:F8:83:47:57:79:C2:59:DD:F9:CC:8A:48:0F:B7
X509v3 Authority Key Identifier:
keyid:89:DB:C7:15:6A:4E:E7:C6:7D:9E:68:47:67:A2:F4:BA:F8:A3:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idvHFWpO58Z9nmhHZ6L0uvijW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/5a9a99-43c2-4cc8-a37b-49501a7694c4/1/idvHFWpO58Z9nmhHZ6L0uvijW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:35:8c:1d:be:b1:a5:15:09:8d:f9:4b:97:fa:27:13:63:89:
47:ce:b8:e3:e6:d6:46:71:da:1b:7a:86:ba:f7:03:9b:8d:2e:
21:33:e8:69:f4:f8:90:50:4b:d4:1e:a6:e5:2f:0a:76:f1:4b:
a3:ca:a2:1f:2d:59:6b:1d:d0:e5:c6:e6:d6:31:cc:e1:4a:1f:
aa:49:fa:04:3f:ac:b3:c4:63:21:0f:0a:e6:dc:06:e2:f2:44:
f9:d7:5d:1a:0e:6f:85:45:cf:f3:87:30:fb:ff:4f:a4:e6:ab:
c1:4e:17:49:26:b2:8d:20:89:42:6b:06:72:6e:50:25:09:3d:
3d:81:39:f1:f1:08:c7:7f:29:2a:9d:a7:90:bd:9e:9f:16:31:
ea:92:94:4a:c8:e0:f6:8b:54:0f:11:3d:34:a2:b9:1f:9e:20:
96:cb:97:87:4c:f5:d2:76:f8:11:98:0b:29:b3:e4:69:0f:2a:
24:30:d5:a7:42:07:d3:11:67:91:92:ac:f9:23:f9:50:da:da:
c7:bd:80:8d:cc:03:0e:d9:ab:0f:3d:6e:77:07:8e:bb:67:c1:
01:63:0b:f4:c6:c1:f9:bf:56:4d:21:c3:44:6f:57:d0:31:82:
26:79:4f:55:19:2d:02:6d:66:c9:9a:c0:2d:45:d5:df:da:b6:
6b:5c:ca:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpQBvr81LLjFrawRlKPYyyWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5ZGJjNzE1NmE0ZWU3YzY3ZDllNjg0NzY3YTJmNGJhZjhh
MzViYWIwHhcNMjUxMTA0MTgwMDI2WhcNMjUxMTA1MTgwMDI2WjAzMTEwLwYDVQQD
EyhhYjU0MGI0NTg1NzZmODgzNDc1Nzc5YzI1OWRkZjljYzhhNDgwZmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt23WSb40kEe+73wZibYd6yK9NCw2
275bjomTsb4uR/rOqtEdfod5Ez7OQLWXE62fGcKv8aDFjyo292Jq2E4E4a9LCNr0
/shlVc+B98dIKhaC275uPrUEQTwB5rx17Dzo05gL4SzhyHAGWvmIKpv9iSMqDvI0
ET4KKo1EeR2Q4ppdqSSjLryhY2k1yySezsZul2ArFj0qXQElxdOkKRct+MpuBaaT
MnvNWSSqqOphzLQE0YGWjhqLaU7uw0UQuY+CMmdy70D7ofF1INH211ddNndz6sln
/P3vidMO+Oh9hUMhc2ymFyvCW7/bM+IkeFS2wepG2GrZPCYPJ44Dj72HswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKtUC0WFdviDR1d5wlnd+cyKSA+3MB8GA1UdIwQY
MBaAFInbxxVqTufGfZ5oR2ei9Lr4o1urMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81YTlhOTktNDNjMi00Y2M4LWEzN2It
NDk1MDFhNzY5NGM0LzEvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy81YTlhOTktNDNjMi00Y2M4LWEzN2ItNDk1MDFhNzY5NGM0
LzEvaWR2SEZXcE81OFo5bm1oSFo2TDB1dmlqVzZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfTWMHb6x
pRUJjflLl/onE2OJR8644+bWRnHaG3qGuvcDm40uITPoafT4kFBL1B6m5S8KdvFL
o8qiHy1Zax3Q5cbm1jHM4Uofqkn6BD+ss8RjIQ8K5twG4vJE+dddGg5vhUXP84cw
+/9PpOarwU4XSSayjSCJQmsGcm5QJQk9PYE58fEIx38pKp2nkL2enxYx6pKUSsjg
9otUDxE9NKK5H54glsuXh0z10nb4EZgLKbPkaQ8qJDDVp0IH0xFnkZKs+SP5UNra
x72AjcwDDtmrDz1udweOu2fBAWML9MbB+b9WTSHDRG9X0DGCJnlPVRktAm1myZrA
LUXV39q2a1zKzg==
-----END CERTIFICATE-----
Generated at Wed Nov 5 00:16:59 2025 by rpki-client